Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
EditeurscriptsEsfaq

2 matches found

CVE
CVEadded 2009/01/30 6:3 p.m.45 views

CVE-2008-6016

Affected product/version: EsFaq 2.0. Vulnerability: SQL injection in questions.php (two related vectors observed: via cid parameter for CVE-2008-6016 and via idcat parameter for CVE-2008-3952). Root cause (per sources): Unparameterized SQL handling in the backend allows remote attackers to inject...

7.5CVSS8.2AI score0.00905EPSS
CVE
CVEadded 2009/01/30 6:3 p.m.43 views

CVE-2008-6015

CVE-2008-6015 relates to multiple SQL injection vulnerabilities in EsFaq 2.0 (search.php). The issues allow remote attackers to inject arbitrary SQL through the keywords and cat parameters. Affected component is the search functionality in EsFaq 2.0; root cause is improper input handling leading ...

7.5CVSS8.5AI score0.01001EPSS